ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel driver by importing at runtime.
☆50Mar 22, 2023Updated 3 years ago
Alternatives and similar repositories for zeroimport
Users that are interested in zeroimport are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Expanding Kernel Lazy Importer☆33Feb 16, 2023Updated 3 years ago
- UEFI bootkit: Hardware Implant. In-Progress☆15Mar 7, 2022Updated 4 years ago
- Windows Kernel Mode PCRE☆10Feb 4, 2015Updated 11 years ago
- A care package of useful bofs for red team engagments☆53Dec 6, 2024Updated last year
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆26Apr 24, 2022Updated 3 years ago
- A plugin for IDA Pro and Cheat Engine to get the offset of the current module☆11May 30, 2024Updated last year
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Mar 16, 2026Updated last week
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆55Sep 20, 2022Updated 3 years ago
- ☆12Oct 12, 2021Updated 4 years ago
- ☆49Feb 21, 2022Updated 4 years ago
- ☆12Jul 12, 2022Updated 3 years ago
- ☆225Mar 11, 2023Updated 3 years ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆317May 31, 2023Updated 2 years ago
- Load your driver like win32k.sys☆258Aug 20, 2022Updated 3 years ago
- A project on the Unicorn emulator to emulate the code of Pe files in windows☆28Sep 12, 2024Updated last year
- Kernel Context [template c++] Library - K C L. Your stl for work in linux/windows kernel !!!☆11Jul 24, 2018Updated 7 years ago
- A project written in C++ to get hardware info on a Windows PC. Interfaces with the Windows Management Instrumentation (WMI) service to qu…☆11Nov 1, 2021Updated 4 years ago
- A simple MmCopyMemory hook.☆38Jul 11, 2022Updated 3 years ago
- ☆143Dec 10, 2022Updated 3 years ago
- Simple IOCTL hooking driver for Kernel- User - Mode communication.☆11Jul 26, 2020Updated 5 years ago
- POC usermode <=> kernel communication via ALPC.☆72Jun 6, 2024Updated last year
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Oct 7, 2022Updated 3 years ago
- base for testing☆187Sep 28, 2024Updated last year
- manually map driver for a signed driver memory space☆177Mar 11, 2021Updated 5 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- ☆23May 8, 2023Updated 2 years ago
- A library to assist with memory & code protection.☆66Mar 7, 2024Updated 2 years ago
- ☆24Jul 15, 2023Updated 2 years ago
- kernel to user mode APC injector☆45Mar 19, 2022Updated 4 years ago
- Taking advantage of CRT initialization, to get away with hooking protected applications☆48Mar 7, 2026Updated 2 weeks ago
- ☆20Nov 1, 2022Updated 3 years ago
- ☆14Apr 16, 2022Updated 3 years ago
- old code from 2007/2008 which uses split TLB to trace OEP☆16Jun 16, 2018Updated 7 years ago
- A Privacy-Conscious, DNS-over-HTTP-Enabled, Blacklist-Incorporating SOCKS5 Proxy☆30Feb 28, 2019Updated 7 years ago
- Another UEFI runtime bootkit☆37May 8, 2023Updated 2 years ago
- ☆90Jun 2, 2024Updated last year
- Experiment to use sections as User/Kernelmode comm vector☆22Apr 7, 2023Updated 2 years ago
- POC Hook of nt!HvcallCodeVa☆54May 8, 2023Updated 2 years ago
- ☆23Jul 24, 2023Updated 2 years ago